Date: Wed, 11 Feb 2004 23:12:31 -0800 From: Avleen Vig <lists-freebsd@silverwraith.com> To: Robert Watson <rwatson@freebsd.org> Cc: freebsd-security@freebsd.org Subject: Re: Longest known unpatched FreeBSD security issue ? Message-ID: <20040212071230.GI54091@silverwraith.com> In-Reply-To: <Pine.NEB.3.96L.1040211113608.75521B-100000@fledge.watson.org> References: <6.0.3.0.0.20040210154335.04a3c9f8@209.112.4.2> <Pine.NEB.3.96L.1040211113608.75521B-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Feb 11, 2004 at 11:41:56AM -0500, Robert Watson wrote: > (2) The problem is brought to our attention in a manner which requires > coordination with other vendors providing the software or component -- > this can introduce additional delays in the advisory cycle. In the > past, we've seen coordination delays of up to (or maybe exceeding) a > month. For example, CERT will aften schedule advisory releases three > weeks or more past initial notification. I seem to recall one IP > stack issue across many vendors that actually tooks several months to > resolve. Just out of curiousity Robert, which IP stack issue was this?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040212071230.GI54091>